Urcq

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. (affected versions not specified) **Description** A third-party component exposed its password in process arguments, potentially allowing low-privileged users to access it. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Axis Communications devices (affected versions not specified) **Description** An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This issue can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces a victim to install a malicious ACAP application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Axis Communications (affected versions not specified) **Description** An ACAP configuration file has improper permissions and lacks input validation, potentially leading to privilege escalation. Exploitation requires the Axis device to allow the installation of unsigned ACAP applications and an attacker convincing a victim to install a malicious ACAP application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Axis (affected versions not specified) Description: An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This issue can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications and if an attacker convinces a victim to install a malicious ACAP application. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Axis (affected versions not specified) Description: ACAP applications can be executed with elevated privileges, potentially leading to privilege escalation. This issue can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces a victim to install a malicious ACAP application. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.